sharpetronics/strongswan
1
0
Fork 0
mirror of https://github.com/strongswan/strongswan.git synced 2025-10-06 00:00:47 -04:00
Code Issues Projects Releases Wiki Activity
18,190 Commits 101 Branches 327 Tags
Commit Graph

417 Commits

Author SHA1 Message Date
Tobias Brunner
9e228de60a kdf: Add plugin that provides a default prf+ implementation 2022-04-14 18:54:24 +02:00
Tobias Brunner
b00a4e778f selinux: Add plugin to install trap policies with generic labels 
After establishing an IKE_SA, we check if any of its child configs
define generic SELinux labels and install trap policies for them if
necessary narrowed to the current (virtual) IPs.
 2022-04-14 18:42:01 +02:00
Tobias Brunner
fe5f27336d configure: Add option to link against libselinux 2022-04-14 18:42:01 +02:00
Andreas Steffen
57d6e96943 Version bump to 5.9.5 2022-01-24 12:01:10 +01:00
Andreas Steffen
1321fdb8aa Version bump to 5.9.5rc1 2022-01-16 07:48:12 +01:00
Andreas Steffen
36c64589d8 Version bump to 5.9.5dr4 2021-12-31 14:46:31 +01:00
Andreas Steffen
dadcd9060e Version bump to 5.9.5dr3 2021-12-11 16:39:34 +01:00
Andreas Steffen
4124b1d376 Version bump to 5.9.5dr2 2021-11-18 22:06:09 +01:00
Andreas Steffen
bcbf1862d7 Version bump to 5.9.5dr1 2021-10-26 08:04:19 +02:00
Andreas Steffen
66fa7c959a Version bump to 5.9.4 2021-10-18 11:45:53 +02:00
Andreas Steffen
1ecb0b8133 Version bump to 5.9.4rc1 2021-10-12 08:54:03 +02:00
Andreas Steffen
740038e401 Version bump to 5.9.4dr3 2021-10-04 15:47:05 +02:00
Andreas Steffen
1b21a00fa7 Version bump to 5.9.4dr2 2021-09-21 14:18:16 +02:00
Andreas Steffen
0eb1d6c0e6 Version bump to 5.9.4dr1 2021-08-22 10:55:37 +02:00
Tobias Brunner
6c1210dcf6 configure: Enforce tss-tss2 if tpm plugin is enabled 
The plugin is useless without a TSS 2.0 and this is currently the only one.
 2021-08-20 10:45:44 +02:00
Andreas Steffen
4817d5ed0d Version bump to 5.9.3 2021-07-06 14:00:39 +02:00
Andreas Steffen
30fab57124 Version bump to 5.9.3rc1 2021-06-24 09:18:54 +02:00
Andreas Steffen
dbd1534875 Version bump to 5.9.3dr4 2021-06-22 10:33:07 +02:00
Andreas Steffen
9c85a52956 Version bump to 5.9.3dr3 2021-06-04 09:28:17 +02:00
Andreas Steffen
d415673565 Version bump to 5.9.3dr2 2021-05-21 10:00:41 +02:00
Tobias Brunner
f0a20dd2b8 backtrace: The BFD API changed in newer versions 2021-05-05 16:17:54 +02:00
Andreas Steffen
09df86c033 Version bump to 5.9.3dr1 2021-03-31 09:59:55 +02:00
Andreas Steffen
87ba3a424d Version bump to 5.9.2 2021-02-26 11:30:13 +01:00
Andreas Steffen
356f87355b Version bump to 5.9.2rc2 2021-02-21 10:40:34 +01:00
Andreas Steffen
d08fa4bd0a Version bump to 5.9.2rc1 2021-02-18 20:16:17 +01:00
René Fischer
4261fcedec botan: Use strongSwan's RNG interface in Botan plugin 
This allows using rng_t implementations provided by other plugins to
serve as RNG for Botan.

Closes strongswan/strongswan#192.
 2021-02-15 09:27:51 +01:00
Tobias Brunner
eb399fb438 botan: Look for Botan 3 in configure script 2021-02-15 09:23:56 +01:00
Andreas Steffen
ab58f95b12 Version bump to 5.9.2dr2 2021-02-12 08:17:54 +01:00
Andreas Steffen
fcb595f961 Version bump to 5.9.2dr1 2021-01-08 11:00:15 +01:00
Andreas Steffen
f397fc02e9 configure: Fixed test for imv_swima 2020-12-24 13:08:49 +01:00
Andreas Steffen
0fc6767097 Version bump to 5.9.1 2020-11-10 20:45:13 +01:00
Andreas Steffen
d63e6156bb Version bump to 5.9.1rc1 2020-11-01 18:45:34 +01:00
Andreas Steffen
f3d96b7bc9 Version bump to 5.9.1dr1 2020-10-07 16:54:32 +02:00
Andreas Steffen
2205c75bad Version bump to 5.9.0 2020-07-29 13:08:09 +02:00
Andreas Steffen
2eec7efd46 Version bump to 5.9.0rc1 2020-07-21 22:43:36 +02:00
Tobias Brunner
544ff81911 configure: Ignore unknown Git version number 
Don't abort the script if the version is reported as UNKNOWN, which happens
on CI hosts where the repository is only cloned with a certain depth (which
may not include the latest tag).

Also, never map VERSION to UNKNOWN.

Fixes: 2e522952c77d ("configure: Optionally use version information obtained from Git in executables")
 2020-07-21 12:49:13 +02:00
Tobias Brunner
2e522952c7 configure: Optionally use version information obtained from Git in executables 
The variable GIT_VERSION is always defined, either obtained from Git or
a file that is embedded in tarballs when they are built.  Optionally,
that version is declared as VERSION in config.h so it will be used e.g. in
the daemons when they print the version number.

There is a check that should catch missing tags (i.e. if the version number
in AC_INIT() isn't a prefix of the version obtained via Git).
 2020-07-20 14:10:52 +02:00
Andreas Steffen
d470422974 Version bump to 5.9.0dr2 2020-06-14 12:15:44 +02:00
Andreas Steffen
12e4dbb231 Version bump to 5.9.0dr1 2020-06-06 15:02:42 +02:00
Tobias Brunner
b06374f6a5 file-logger: Set owner/group of log file 
The file is usually opened/created by root, however, if user/group IDs
are configured and the configuration is reloaded, the file will be reopened
as configured user.  Like with UNIX sockets we only attempt to change
the user if we have CAP_CHOWN allowing a start as regular user.

We don't have chown() on Windows, so check for it.
 2020-05-07 09:30:57 +02:00
Andreas Steffen
3273667b0b Version bump to 5.8.4 2020-03-29 12:49:52 +02:00
Andreas Steffen
0728387ea9 Version bump to 5.8.3 2020-03-24 16:01:04 +01:00
Andreas Steffen
c88a4996fa Version bump to 5.8.3rc1 2020-03-19 08:43:10 +01:00
Andreas Steffen
68e8fedccb Version bump to 5.8.3dr1 2020-03-04 22:27:13 +01:00
Tobias Brunner
1966f4332b configure: Make sure Python is available for static builds 
We need Python to create files that reference the plugin constructors.
Without it, empty files are created and plugins can't be loaded.

Fixes #3349.
 2020-02-28 13:55:18 +01:00
Tobias Brunner
cfed3a87ee charon-nm: Use better default directory for D-Bus policy file 
Also makes it configurable via configure script.  Depending on `$datadir` is
not ideal as package maintainers might set that to a custom value.  Depending
on `$datarootdir` might have been better, the default if pkg-config fails is
now based on that.

References #3339.
 2020-02-21 09:46:13 +01:00
Tobias Brunner
b2b69f4156 configure: Depend on libip4tc instead of libiptc 
The libiptc meta-package apparently will be removed e.g. from Debian.
We currently only need IPv4 support in the connmark and forecast plugins.

Fixes #3338.
 2020-02-14 10:07:23 +01:00
Josh Soref
b3ab7a48cc Spelling fixes 
* accumulating
* acquire
* alignment
* appropriate
* argument
* assign
* attribute
* authenticate
* authentication
* authenticator
* authority
* auxiliary
* brackets
* callback
* camellia
* can't
* cancelability
* certificate
* choinyambuu
* chunk
* collector
* collision
* communicating
* compares
* compatibility
* compressed
* confidentiality
* configuration
* connection
* consistency
* constraint
* construction
* constructor
* database
* decapsulated
* declaration
* decrypt
* derivative
* destination
* destroyed
* details
* devised
* dynamic
* ecapsulation
* encoded
* encoding
* encrypted
* enforcing
* enumerator
* establishment
* excluded
* exclusively
* exited
* expecting
* expire
* extension
* filter
* firewall
* foundation
* fulfillment
* gateways
* hashing
* hashtable
* heartbeats
* identifier
* identifiers
* identities
* identity
* implementers
* indicating
* initialize
* initiate
* initiation
* initiator
* inner
* instantiate
* legitimate
* libraries
* libstrongswan
* logger
* malloc
* manager
* manually
* measurement
* mechanism
* message
* network
* nonexistent
* object
* occurrence
* optional
* outgoing
* packages
* packets
* padding
* particular
* passphrase
* payload
* periodically
* policies
* possible
* previously
* priority
* proposal
* protocol
* provide
* provider
* pseudo
* pseudonym
* public
* qualifier
* quantum
* quintuplets
* reached
* reading
* recommendation to
* recommendation
* recursive
* reestablish
* referencing
* registered
* rekeying
* reliable
* replacing
* representing
* represents
* request
* request
* resolver
* result
* resulting
* resynchronization
* retriable
* revocation
* right
* rollback
* rule
* rules
* runtime
* scenario
* scheduled
* security
* segment
* service
* setting
* signature
* specific
* specified
* speed
* started
* steffen
* strongswan
* subjectaltname
* supported
* threadsafe
* traffic
* tremendously
* treshold
* unique
* uniqueness
* unknown
* until
* upper
* using
* validator
* verification
* version
* version
* warrior

Closes strongswan/strongswan#164.
 2020-02-11 18:23:07 +01:00
Tobias Brunner
2cb4af6696 wolfssl: Use pkg-config to check for wolfSSL 
The other checks trigger an automatic install of the old and incompatible
Ubuntu package on LGTM.
 2020-01-30 17:12:05 +01:00
Tobias Brunner
04ce39e7c0 libtpmtss: Only check for legacy TSS2 libs if newer are not found 
On LGTM, legacy packages are installed automatically otherwise.
 2020-01-30 15:37:45 +01:00